$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa File: 3230322e36352e3132322e302f32342d3234203d3e203233393531.roa (raw, json) Hash identifier: So5G4uHqVHWD5JnkptSS1bHWAe/cdyDOQettCO6GGiU= Subject key identifier: 51:CA:2F:6A:76:2B:0B:1A:9E:4E:00:C4:18:6F:AD:6D:62:8F:07:20 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 724B1A47896C0BC6602371E84B1857263DE8797C Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa Signing time: Fri 23 Aug 2024 03:00:00 +0000 ROA not before: Fri 23 Aug 2024 02:55:00 +0000 ROA not after: Fri 22 Aug 2025 03:00:00 +0000 asID: 23951 IP address blocks: 202.65.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:4b:1a:47:89:6c:0b:c6:60:23:71:e8:4b:18:57:26:3d:e8:79:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Aug 23 02:55:00 2024 GMT Not After : Aug 22 03:00:00 2025 GMT Subject: CN=51CA2F6A762B0B1A9E4E00C4186FAD6D628F0720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:60:1c:16:cc:23:d8:fb:21:29:72:8c:85: 05:be:b4:8c:31:fb:ee:77:e8:74:7c:db:53:8f:7d: 6e:2a:69:c8:6e:77:52:57:4a:8f:14:1f:c3:31:49: 3b:41:06:23:af:3b:81:71:9a:f8:c9:c5:09:28:c6: 49:45:8b:0a:93:d7:d6:73:90:5a:ea:71:35:fa:26: e9:c6:2a:61:e9:ec:72:00:c0:29:67:31:13:7f:60: 76:19:7b:40:28:73:7c:38:3c:fb:82:a3:4f:ac:a7: 81:22:d2:40:44:89:45:96:a9:b0:5d:c3:f4:61:b8: fa:aa:0d:36:e8:e5:ad:18:86:3d:ea:be:3b:bf:b2: 75:1a:fb:39:8a:46:e2:ec:cc:e5:5a:68:ae:57:52: 5f:83:3b:0b:51:51:d2:84:ef:41:e4:8b:ac:b1:9f: 04:ba:7a:ca:3a:86:cf:c8:d6:36:b2:59:e6:31:b1: a6:0b:84:09:a6:38:91:e0:91:30:52:31:9f:82:2b: d9:a6:5f:f4:c9:e1:86:28:d9:10:4a:21:49:75:61: e9:9d:f7:d9:10:36:24:8c:1f:11:e8:d7:d3:5c:59: 58:e4:29:ee:13:55:e2:fb:67:7c:d0:6a:c5:16:44: 96:79:b9:43:ea:d8:2a:64:c0:44:49:e3:4a:8f:c1: e9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CA:2F:6A:76:2B:0B:1A:9E:4E:00:C4:18:6F:AD:6D:62:8F:07:20 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3132322e302f32342d3234203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.122.0/24 Signature Algorithm: sha256WithRSAEncryption 52:58:05:51:13:bc:d7:96:8e:1a:d6:89:37:c4:6e:ea:c1:df: e3:3a:95:7f:88:d4:c3:d5:ea:0b:1d:b7:62:4a:cb:fe:e3:4a: 38:4f:05:8e:7a:d0:1a:65:aa:d9:23:59:d2:d5:4b:bc:16:87: 0a:55:54:92:1d:98:9e:ae:75:77:03:63:64:25:86:67:95:02: d7:63:6a:1a:ba:ad:3b:78:f9:87:95:c2:6a:b1:48:2a:0a:a1: ee:bd:6c:b2:ef:1e:4c:c9:8a:81:44:80:8d:78:a1:34:22:cc: 2e:5d:d9:ff:71:11:9a:b6:64:f5:03:e2:86:b3:25:a3:bc:5d: 77:d4:18:72:cd:da:f0:53:88:ce:f6:3c:0e:9b:e8:bf:3b:6c: fd:5b:0a:ef:b0:21:36:c6:0a:ff:22:25:66:be:6a:1a:5e:e1: f8:76:db:0d:26:99:af:cb:2a:8e:47:dd:16:ad:8b:10:69:0c: 91:93:98:4d:6a:ea:ba:7b:4d:81:21:24:9c:ba:d7:57:cd:d6: f2:f8:e1:f9:26:79:b4:9f:b8:22:17:4b:7d:31:c2:32:3a:8b: f8:de:09:2e:b3:7c:36:2c:e3:59:fa:47:77:71:6b:59:e2:b7: 54:9e:4e:8a:2d:e8:ba:03:0a:8a:59:fe:52:96:74:f2:6c:57: 7e:b2:2c:11 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUcksaR4lsC8ZgI3HoSxhXJj3oeXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNDA4MjMwMjU1MDBaFw0yNTA4MjIwMzAwMDBaMDMxMTAvBgNV BAMTKDUxQ0EyRjZBNzYyQjBCMUE5RTRFMDBDNDE4NkZBRDZENjI4RjA3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBkWAcFswj2PshKXKMhQW+tIwx ++536HR821OPfW4qachud1JXSo8UH8MxSTtBBiOvO4FxmvjJxQkoxklFiwqT19Zz kFrqcTX6JunGKmHp7HIAwClnMRN/YHYZe0Aoc3w4PPuCo0+sp4Ei0kBEiUWWqbBd w/RhuPqqDTbo5a0Yhj3qvju/snUa+zmKRuLszOVaaK5XUl+DOwtRUdKE70Hki6yx nwS6eso6hs/I1jayWeYxsaYLhAmmOJHgkTBSMZ+CK9mmX/TJ4YYo2RBKIUl1Yemd 99kQNiSMHxHo19NcWVjkKe4TVeL7Z3zQasUWRJZ5uUPq2CpkwERJ40qPwen5AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUUcovanYrCxqeTgDEGG+tbWKPByAwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMjMyMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMpBejANBgkqhkiG 9w0BAQsFAAOCAQEAUlgFURO815aOGtaJN8Ru6sHf4zqVf4jUw9XqCx23YkrL/uNK OE8FjnrQGmWq2SNZ0tVLvBaHClVUkh2Ynq51dwNjZCWGZ5UC12NqGrqtO3j5h5XC arFIKgqh7r1ssu8eTMmKgUSAjXihNCLMLl3Z/3ERmrZk9QPihrMlo7xdd9QYcs3a 8FOIzvY8Dpvovzts/VsK77AhNsYK/yIlZr5qGl7h+HbbDSaZr8sqjkfdFq2LEGkM kZOYTWrquntNgSEknLrXV83W8vjh+SZ5tJ+4IhdLfTHCMjqL+N4JLrN8NizjWfpH d3FrWeK3VJ5Oii3ougMKiln+UpZ08mxXfrIsEQ== -----END CERTIFICATE-----Generated at Thu Nov 21 21:01:20 2024 by rpki-client on console-fra.rpki-client.org